Where’s their nightly backup? Where’s the planned contingency for this?
I’m not sure I even believe the claim that this is ransomware. It sounds like a smokescreen. How can a pipeline be so vulnerable?
I’m a software expert, I’ve done countless designs & implementations of them - embedded systems, desktop apps, web/cloud apps, cars, planes, phones, etc. and with systems requiring functional safety it also includes security requirements - you’re not safe if you’re not secure.
THIS STINKS TO HIGH HEAVEN. I’m not believing the narrative.
Gas Buddy is showing a few stations reporting low availability and even fewer showing outages. Give it a few more days and we will be in a full blown crisis. Right now things look pretty good. But with nothing flowing...we are likely a day or two out from a bad weekend.
https://tracker.gasbuddy.com/?_ga=2.144807152.593772598.1620738533-587960250.1620738533
Older equipment running custom apps on OS that are no longer supported, lack of external protection... It’s pretty easy if IT doesn’t or isn’t allowed to keep all systems up to date or have adequate backups.
See my above post - you’d be shocked at the number of people out there in positions of leadership that won’t spend to keep systems updated and then go shocked Pikachu when their decision to get a $100K company Mercedes S-class instead of upgrading the Cisco firewall appliances and putting everything on a real VPN backfires.
I tend to agree. This is 2021 and the so called “ramsonware” scheme is well known.
Colonial would have and entire team of highly paid security analysts dedicated to nothing except protecting the integrity of their IT infrastructure.
I can’t believe this is blatant incompetence. There are other factors at play.
“Where’s their nightly backup?”
That isn’t done anymore. High Availability techniques no longer need to rely on nightly backups but on real-time failovers.
Working in industry, I do believe.
someone wanted a bonus and cut back up and failsafes out.